Search for packages
| purl | pkg:rpm/redhat/httpd24-httpd@2.4.6-25?arch=el7 |
| Next non-vulnerable version | None. |
| Latest non-vulnerable version | None. |
| Risk | 2.2 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-1d24-sy5z-jfhh
Aliases: CVE-2013-5704 |
HTTP trailers could be used to replace HTTP headers late during request processing, potentially undoing or otherwise confusing modules that examined or modified request headers earlier. This fix adds the "MergeTrailers" directive to restore legacy behavior. | There are no reported fixed by versions. |
|
VCID-fnxp-n271-mfd8
Aliases: CVE-2014-3581 |
A NULL pointer deference was found in mod_cache. A malicious HTTP server could cause a crash in a caching forward proxy configuration. This crash would only be a denial of service if using a threaded MPM. | There are no reported fixed by versions. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2026-04-01T14:49:44.995404+00:00 | RedHat Importer | Affected by | VCID-1d24-sy5z-jfhh | https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2013-5704.json | 38.0.0 |
| 2026-04-01T14:46:15.901903+00:00 | RedHat Importer | Affected by | VCID-fnxp-n271-mfd8 | https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2014-3581.json | 38.0.0 |